[jira] [Commented] (SOLR-7274) Pluggable authentication module in Solr

Thu, 02 Apr 2015 08:19:27 -0700 

    [ 
https://issues.apache.org/jira/browse/SOLR-7274?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14392816#comment-14392816
 ] 

Ishan Chattopadhyaya commented on SOLR-7274:
--------------------------------------------

[~gchanan] Thanks for pitching in! Cloudera's implementation was actually one 
of my starting points when I started looking into this.

bq.  What I'm not sure about is how you will make the configuration general 
enough without mentioning Filters. I.e. will there be pre-approved 
authentication mechanisms? Will I be able to write my own?

My thought was to have configurations actually mention the filters (which may 
deal with any authentication mechanism, not just preapproved ones), without the 
user having to add it to the web.xml. For instance (and this may look different 
in the implementation), a user could have a configuration as 
"HostnameFilter,SolrHadoopAuthenticationFilter" and the authentication layer 
(which might itself be a servlet filter) would call the doFilter() on each of 
the two filters.

bq. This discussion also seems focused on the server side. Is the client side 
considered outside the scope of this jira? (i'm thinking something like 
SOLR-6625, but SOLR-4470 is related).

Client side configurations are in the scope of pluggable items for each 
authentication mechanism. My thought was that this issue (SOLR-7274) could 
leverage the callback "frameworks" of SOLR-6625, SOLR-4470 and focus on the 
pluggable aspects of the configurations for each authc mechanism.

> Pluggable authentication module in Solr
> ---------------------------------------
>
>                 Key: SOLR-7274
>                 URL: https://issues.apache.org/jira/browse/SOLR-7274
>             Project: Solr
>          Issue Type: Sub-task
>            Reporter: Anshum Gupta
>
> It would be good to have Solr support different authentication protocols.
> To begin with, it'd be good to have support for kerberos and basic auth.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org
For additional commands, e-mail: dev-h...@lucene.apache.org

Reply via email to